Hi ,

I used the fixup protocol to open the ports but the fiewall is still blocking something

fixup protocol h323 h225 1720

fixup protocol h323 h225 2776

fixup protocol h323 h225 2777

fixup protocol h323 h225 5555-5556

fixup protocol h323 ras 1718-1719

is this enough for VC or i have to open more ports

please give me your suggestions

Hi,

The tandberg VideoConf. use H.323 V4 by default. The fixup in the pix is for H.323 V2.

The videoConf box is trying to encrypt the conference call(default behavior). You must disable encryption(H.323 V4). If it does not work...look at the codec on the box, the problem is always there. (many H.*** are not supported on pix)

I have 4 of them on campus...a challenge every time :) I might be able to find a working config if needed.

Hi domnic,

are you talking about the bordercontroller?

can you suggest me which ports i have open in pix

for video conference ?

No, I'm not talking about border controller. You can get a videoconferencing to work with a PIX without it. The pix does'nt support those...from tandberg website...

"TANDBERG supports all of the following encryption standards: AES, DES, H.233, H.234 and H.235 with an extended Diffie-Hellman key distribution on H.323, H.320 and leased lines."

Simply disable those in the end device and the fixup h.323 on the pix will do the job. If you need encryption, you will have to use(buy) the border controler.

(If you disable encryption on your side, the other end will negotiate a connection without encryption too)

Hi domnic,

we already have border controller and gatekeeper i attached my network diagram please refer and give me your suggestions,same scenario on both the ends .From remorte office they can able to access our border controller but they cannot cross the firewall